Posts

Russia successfully disconnected from the internet

Image
  RuNet disconnection tests were successful, according to the Russian government. The Russian government announced on Monday that it concluded a series of tests during which it successfully disconnected the country from the worldwide internet. The tests were carried out over multiple days, starting last week, and involved Russian government agencies, local internet service providers, and local Russian internet companies. The goal was to test if the country's national internet infrastructure -- known inside Russia as RuNet -- could function without access to the global DNS system and the external internet. Internet traffic was re-routed internally, effectively making Russia's RuNet the world's largest intranet. The government did not reveal any technical details about the tests and what exactly they consisted of. It only said that the government tested several disconnection scenarios, including a scenario that simulated a hostile cyber-attack from a foreign country. The expe...

Chrome 79 for Android Update Rollout Restarts With Fix for App Data Deleting Bug

Image
A Google spokesperson has confirmed that the rollout of Chrome 79.0.3945.93 for Android has begun. Earlier this week, Google paused the rollout of Chrome 79 for Android users after a bug was reported by developers. This bug led to the deletion of user data and resetting of some mobile apps. However, a fix has now been found, and it has been added to the rollout of Chrome 79.0.3945.93 for Android. The update rollout has commenced once again, and Android users must keep a lookout for this update, especially users who were affected by the bug. A Google spokesperson confirmed that the rollout of Chrome 79.0.3945.93 for Android has begun, and it brings a fix for the app data deleting bug. The update was paused earlier this week after the Chromium bug tracker labelled the data deletion issue as ‘catastrophe'. Essentially, users of specific apps found that all the data inside the apps were lost after updating to Chrome 79. It seemed like the apps simply did a reset without any interv...

Google: Search is changing, so here's how you'll now see news search results

Image
  Google is using its latest machine-learning techniques to improve news suggestions for mobile users. Google Search mobile users in the US looking for a specific news topic will now see a carousel of relevant stories at the top of the results page, plus new related coverage. That related coverage to top stories can be seen in additional cards beneath each main card in the carousel. This feature should make it easier for users to make informed decisions about which articles to click through to,  according to Google .   "Within each story, the new structure will make more room for high-quality content – beyond just the most recent coverage – as well as more diverse sources, to bring more context and perspective to the day's news," it says in a blogpost. Google recently revealed how its new BERT machine-learning generated models are improving how Search understands what humans are looking for when they type a query.     BERT is short for Bidirection...

Data of 21 million Mixcloud users put up for sale on the dark web

Image
  Emails, usernames, and strong-hashed passwords sold for $2,000. A hacker has breached online music streaming service Mixcloud earlier this month, and is now selling the site's user data online, on a dark web marketplace. The hack came to light on Friday, when the hacker contacted several journalists to share news of the breach and to provide data samples. Accordig to a sample of the stolen data, the hacker is selling Mixcloud user information that includes details such as usernames, email addresses, hashed password strings, users' country of origin, registration dates, last login dates, and IP addresses. The breach appears to have taken place on or before November 13, which is the registration date for the last user profile included in the data dump. Tech news sites TechCrunch and Motherboard also verified the data authenticity through other means, as well. Mixcloud confirmed the breach in a blog post on Saturday. The company said that most users had signed up through F...

Data security and automation top IT projects for 2020, AI not a priority

Image
  Data security and automation are the top IT projects for 2020, while artificial intelligence projects are not in the top 10 for IT professionals, according to Netwrix. The online survey asked 1045 IT professionals worldwide to name their top five IT projects for the next year; they could pick from a predefined list or specify their own descriptions. The survey found no dramatic difference in IT priorities among organizations based on size or vertical. Top IT projects for 2020 74% of organizations named data security as their top IT priority for 2020 54% of respondents plan to focus on automating manual tasks 43% of organizations ranked data privacy among their top five priorities; 52% of them are subject to privacy regulations 33% of organizations intend to focus on digital transformation, integrating their existing solutions and performing  cloud migrations . These goals were mostly cited by larger organizations with more than 5,000 employees 20% of organizations plan to fo...

Thousands of hacked Disney+ accounts are already for sale on hacking forums

Image
  Hackers began hijacking accounts hours after Disney+ launched earlier this week. Hackers didn't waste any time and have started hijacking Disney+ user accounts hours after the service launched. Many of these accounts are now being offered for free on hacking forums, or available for sale for prices varying from $3 to $11, a investigation has discovered. A STREAM OF USER COMPLAINTS The Disney+ video streaming service launched this week, on November 12. The service, although being available only in the US, Canada, and the Netherlands, has already amassed more than 10 million customers in its first 24 hours. The Disney+ launch was marred by technical issues. Many users reported being unable to stream their favorite movies and shows. But hidden in the flood of complaints about technical issues was a smaller stream of users reporting losing access to their accounts. Many users reported that hackers were accessing their accounts, logging them out of all devices, and then changing ...

Microsoft describes its own DevOps journey

Image
  This is what DevOps looks like inside one of the world's biggest software factories. The goals: more collaboration, improved worklives. n this cloud-drenched era, software vendors have evolved from code-and-ship operations into 24x7 data center operators. So they, perhaps more than any other type of organization, need DevOps methodologies to keep development and operations efforts on track, pumping out releases with blinding frequency, while keeping teams in constant sync. For that reason, Microsoft, perhaps the world's largest software factory, takes DevOps very seriously. In a recent  post , Ori Zohar, senior product marketing manager for Microsoft Azure, describes the urgency for his companies to build and perfect its DevOps culture. "From Office, to Azure, to Xbox we also found we needed to adapt to a new way of delivering software," he explains. "The new era of the cloud unlocks tremendous potential for innovation to meet our customers' growing demand ...

Microsoft warns users to stay alert for more BlueKeep attacks

Image
  Microsoft: BlueKeep exploit will likely be used to deliver payloads more impactful and damaging than coin miners. Microsoft's security team believes that more destructive BlueKeep attacks are on the horizon and urges users and companies alike to apply patches if they've been lagging. The company's warning comes after security researchers detected the first-ever malware campaign that weaponized the BlueKeep vulnerability. The attacks, which were detected last weekend, used BlueKeep to break into unpatched Windows systems and install a cryptocurrency miner. Many security researchers considered the attacks underwhelming and not living up to the hype that was built around BlueKeep for the past six months. This was because Microsoft said BlueKeep could be used to build wormable (self-spreading) malware. However, the attacks that happened over the weekend did not deploy malware that could spread on its own. Instead, attackers scanned the internet for vulnerable systems and at...

The nastiest ransomware, phishing and botnets of 2019

Image
  Webroot released its annual Nastiest Malware list, shedding light on 2019’s worst cybersecurity threats. From ransomware strains and  cryptomining  campaigns that delivered the most attack payloads to phishing attacks that wreaked the most havoc, it’s clear that cyber threats across the board are becoming more advanced and difficult to detect. Ransomware Ransomware continued to see success by evolving a more targeted model initially adopted in previous years. SMBs remain a prime target as they struggle with limited security budget and skills. Whether its phishing attacks targeting employees or brute forcing unsecured RDP, ransomware is as effective as ever, cementing its place on our list for another year. The nastiest include: Emotet – Trickbot – Ryuk (“Triple Threat”)  – One of the most successful chains of 2019 in terms of financial damages. These strains have shifted their focus to more reconnaissance-based operations. They as...

Microsoft says it has come a long way since 'that' open source comment

Image
  Microsoft Australia's CTO told Red Hat Forum his company is committed to open source, and that the fundamental mission driven by Satya Nadella is best achieved through democratisation. Microsoft has copped a lot of flack over comments it has made regarding open source in the past; with one in particular made by its former CEO Steve Ballmer back in 2002 that described Linux and the General Public License as cancers. Highlighting the irony that Microsoft was presenting during Red Hat Forum 2019 in Melbourne on Tuesday, Redmond's Australian CTO Lee Hickin said the company has come a long way since those comments were made. "I recognise the irony of Microsoft here at an open source community event. I'm really proud to do that, and I'm humbled and privileged that we can be on the stage with Red Hat to share our story," Hickin said. Hickin has been with Microsoft on and off since 2005, saying that he's seen three leaders and three very different companies. ...